b'          U.S. Department of Energy\n          Office of Inspector General\n          Office of Audits and Inspections\n\n\n\n\nInspection Report\nReview of Controls Over the\nDepartment\'s Classification of\nNational Security Information\n\n\n\n\nDOE/IG-0904                        March 2014\n\x0c                                            Department of Energy\n                                               Washington, DC 20585\n\n                                                      March 27, 2014\n\nMEMORANDUM FOR THE SECRETARY\n\n\nFROM:                             Gregory H. Friedman\n                                  Inspector General\n\nSUBJECT:                          INFORMATION: Inspection Report on "Review of Controls Over the\n                                  Department\'s Classification of National Security Information"\n\nBACKGROUND\n\nThe Department of Energy handles and manages a broad spectrum of classified information,\nincluding National Security Information (NSI). NSI relates to national defense and foreign\nrelations information and is classified in accordance with Executive Order 13526 and 32 Code of\nFederal Regulations Part 2001, each entitled Classified National Security Information. Federal\nrequirements for NSI stress the need for the flow of information without compromising its\nprotection, and prescribe a uniform system for classifying, safeguarding and declassifying NSI.\n\nThe Office of Health, Safety and Security\'s Office of Classification, manages the Department-\nwide classification program and establishes policies to conform with Federal classification\nrequirements. Implementation of classification requirements is shared among various\norganizations within the Department. In addition, the Department\'s Office of Intelligence and\nCounterintelligence (Headquarters Intelligence) is required to follow NSI policies and\nprocedures instituted by the Office of the Director of National Intelligence. Similarly, the\nDepartment\'s National Nuclear Security Administration (NNSA) separately develops and\nimplements policies and procedures, in coordination with the Office of Classification, for the\nprotection and security of classified information at NNSA sites.\n\nDue to the importance of adequately protecting and sharing classified NSI and in conjunction\nwith a Government-wide review of such material conducted by a number of other offices of\nInspector General, we initiated this inspection to assess the status of the Department\'s classified\nNSI program. The vast majority of the Department\'s classified information is Restricted Data and\nFormerly Restricted Data, which concerns nuclear weapons-related data. 1 Classification of this\ninformation was not assessed during this review.\n\nRESULTS OF INSPECTION\n\nOur inspection revealed that the Department had established and implemented critical elements\nof its classified NSI program. However, our review revealed that certain aspects of the NSI\nprogram could be improved. Our inspection determined that:\n1\n  Classified Restricted Data and Formerly Restricted Data are protected in accordance with the Atomic Energy Act of 1954, as\namended, which provides different classification requirements from NSI, including exclusion from portion marking and\nautomatic declassification. Further, dissemination of Restricted Data and Formerly Restricted Data is limited to individuals with\nspecial access.\n\x0c                                                  2\n\n\n\n   \xe2\x80\xa2   Of the 231 documents and emails we reviewed, 65 percent had classification marking\n       errors that could adversely impact efforts to protect classified NSI against loss or\n       unauthorized disclosure and impede information sharing. These errors included: (1) over\n       or under classification; (2) improper annotations regarding duration and source of\n       protection; and, (3) missing information on the origin and level of protection.\n\n   \xe2\x80\xa2   A classification marking tool embedded in the classified email system at an NNSA site\n       automatically marked emails as Secret//Restricted Data, regardless of content. We\n       observed and senior program officials confirmed that this automatic feature could\n       potentially result in over classifying and improperly marking classified NSI; however, we\n       did not identify any instances in which this actually occurred.\n\n   \xe2\x80\xa2   Headquarters Intelligence officials had not fully implemented required biennial self-\n       assessments and annual classification decision reviews at Headquarters and field\n       intelligence elements to identify and correct classification errors.\n\n   \xe2\x80\xa2   Some of the derivative classifiers we interviewed who were responsible for ensuring the\n       protection of classified information were not familiar with the requirements for making a\n       formal challenge to external entities when they believed that information could be\n       misclassified. However, they were aware of their responsibility to reach out internally to\n       their respective classification officers.\n\nThe issues identified in this report are based on a judgmentally selected sample. Yet, when\nconsidered in conjunction with deficiencies identified by separate compliance reviews completed\nby the Office of Classification, they may reflect lessons learns which apply to the broader NSI\nclassification processes at Department and NNSA elements. A summary of the requirements and\nthe results of our review are detailed in Appendix 1, Inspectors General Community-Wide Focus\nAreas and Appendix 2, Document Review Results.\n\nThe classification related issues we observed occurred, in part, because of ineffective oversight\nof classification activities and inadequate training and guidance. We were told by a\nclassification program official that oversight activities such as self-assessments and document\ndecision reviews had not been completed at Headquarters Intelligence and field intelligence\nelements because Headquarters Intelligence had not allocated resources to do so. Also,\nHeadquarters Intelligence officials had not granted proper security clearances to allow local\nclassification officers to assess and review the classified NSI program at field intelligence\nelements. Further, interviews revealed, and we confirmed, that performance standards regarding\nclassification duties had not been established for the majority of the Federal derivative classifiers\nwe interviewed, although required by Executive Order 13526.\n\nWith regard to the sufficiency of training and guidance on classification, we found that\nderivative classifiers\' initial and refresher training materials focused on marking documents, but\nnot emails. We also found that this training had not provided sufficient emphasis on marking\nworking papers that contained classified NSI. Further, we noted that although the Department\noffers training covering the topic of marking classified working papers at Headquarters,\nderivative classifiers were not required to complete the training.\n\x0c                                               3\n\n\n\n\nIn addition, the Department and NNSA guidance pertaining to marking classified emails was not\nconsistent with Federal requirements. In particular, the Federal guidance required marking\nemails in the electronic environment while Department and NNSA guidance only required that\nemails be marked when printed. Also, interviewed derivative classifiers were not familiar with\nall requirements for making a formal challenge regarding information that could be misclassified\nbecause the Department had not developed comprehensive training and guidance on that subject.\n\nStriking a balance between protecting NSI and appropriate information sharing is difficult even\nin optimal circumstances. But, it became clear that effective oversight, training and well-\ndeveloped guidance for those involved with the classification of NSI are imperative if the\nDepartment is to be successful in this effort. We made a number of recommendations to assist\nthe Department with improving program management and execution of its classified NSI\nprogram.\n\nMANAGEMENT REACTION\n\nWhile management concurred with the recommendations in the report, concerns were raised on\nthe impact our recommendations would have on established processes for classifying and\nprotecting Restricted Data and Formerly Restricted Data, and on the costs associated with\nimplementing corrective actions resulting from the recommendations. As more fully discussed\nin the body of the report, alternative marking procedures that are compliant with Federal NSI\nrequirements are available and could address management\'s concerns. Overall, we found\nmanagement\'s comments and planned corrective actions to be generally responsive to our report\nfindings and recommendations. Management\'s formal comments are included in Appendix 6.\n\nAttachment\n\ncc:   Deputy Secretary\n      Chief of Staff\n      Acting Administrator, National Nuclear Security Administration\n      Chief, Health, Safety and Security Officer\n      Director, Office of Intelligence and Counterintelligence\n      Chief Information Officer\n\x0cREPORT ON REVIEW OF CONTROLS OVER THE DEPARTMENT\'S\nCLASSIFICATION OF NATIONAL SECURITY INFORMATION\n\n\nTABLE OF\nCONTENTS\n\nClassification of National Security Information\n\nDetails of Finding                                   1\n\nRecommendations and Comments                         8\n\n\nAppendices\n\n1. Inspectors General Community-wide Focus Areas     10\n\n2. Document Review Results                           12\n\n3. Sample of a Classified Document                   13\n\n4. Objective, Scope and Methodology                  14\n\n5. Related Reports                                   16\n\n6. Management Comments                               17\n\x0cREVIEW OF CONTROLS OVER THE DEPARTMENT\'S\nCLASSIFICATION OF NATIONAL SECURITY INFORMATION\n\nPROTECTING NATIONAL SECURITY INFORMATION\n\nOur inspection revealed that the Department of Energy\'s (Department) Office of Health, Safety\nand Security, Office of Classification had taken steps to establish policies and procedures to\nprotect National Security Information (NSI) within the Department. While we observed that\nsome improvements to training were necessary, we determined that, in general, individuals\nauthorized to originally or derivatively classify information had received fundamental training\nand possessed the basic knowledge necessary to execute their classification duties. 3 The training\ncovers familiarization with the system of classification, derivative review process and use of\nclassification guides, and marking mechanisms. However, opportunities for improvement exist\nfor certain aspects of the Department\'s classified NSI program for the three Department elements\nwe reviewed.\n\n                                             Classification Marking Errors\n\nRequirements in 32 Code of Federal Regulations (CFR) Part 2001, Classified National Security\nInformation, indicate that classification markings, such as elements of a classification block as\nwell as portion and banner markings, are essential to leave no doubt about the classified status of\ninformation, level of protection required and duration of classification. 4 Appendix 3, Sample of\na Classified Document, provides an illustration for marking classified information. Further,\nDepartment Order 471.6 and National Nuclear Security Administration (NNSA) Policy Letter\n70.4, both entitled Information Security, specifies Departmental marking requirements for\nclassified working papers and emails to ensure that information is adequately classified and\nprotected. 5\n\nIn spite of the specific information contained in these authorities, we found that a number of\nitems we examined were not properly marked by derivative classifiers. Of the 231 documents\nand emails we reviewed, 65 percent had classification marking errors that could adversely impact\nefforts to protect and share classified NSI, as presented in Appendix 2, Document Review\nResults. 6 Notably, we found classification marking errors including: (1) over or under\nclassification; (2) improper annotations regarding duration and source of protection; and\n(3) missing information on the origin and level of protection.\n\nOver or Under Classification\n\nWe determined that four emails and one document were over or under classified. For example,\none email was marked classified even though the email did not contain classified information\nand three transmittal emails were marked unclassified but contained classified attachments. We\n\n3\n  Individuals with original classification authority classify information in the first instance (originally). Individuals\n  with derivative classification authority incorporate, paraphrase, restate, or generate, in new form, information that\n  is already classified and also apply markings in accordance with classification guidance and source documents.\n4\n  Classification block consists of the "Classified by," "Derived from," and "Declassify on" lines.\n5\n  Working papers are documents or materials that are expected to be revised prior to the preparation of a finished product for\ndissemination or retention.\n6\n  A single document or email may include multiple marking errors.\n______________________________________________________________________________\nPage 1                                                        Details of Finding\n\x0c______________________________________________________________________________\n\n\nfound that the Department and NNSA guidance did not provide information on marking emails\nwith classified attachments. A senior program official also stated that the practice of marking\nunclassified transmittal emails with classified attachments was adequate provided that\nappropriate warnings were noted in the emails. However, we noted that this practice was\ncontrary to 32 CFR Part 2001, which indicates that the overall classification of an email should\naccount for the classification level of any attached files, including the transmittal message.\n\nIn addition to emails, we noted one document was improperly marked Secret NSI even though it\ncontained classified Formerly Restricted Data, information that requires special access. Such\nmarking resulted in the document being subject to a premature release due to NSI automatic\ndeclassification provisions, which is contrary to the Atomic Energy Act of 1954, as amended\n(Atomic Energy Act). 7 Unlike NSI, documents classified as Restricted Data or Formerly\nRestricted Data do not have declassification instructions. We noted that the document was part\nof a classified file that was updated on a frequent basis. Such updates could potentially change\nthe classification status of the documents contained in the file. Even though this classified\ndocument appeared to have characteristics of a "Draft" or "Working Paper," it was not annotated\nto convey the working draft status of the file, contrary to Department Order 471.6 and NNSA\nPolicy Letter 70.4.\n\nImproper Annotation Regarding Duration and Source of Protection\n\nWe identified 37 documents that contained improper instructions on when to declassify\ninformation. Although required, 17 of the 37 documents we reviewed did not include the\nappropriate and more restrictive declassification instructions. The documents specified\nautomatic declassification dates within 25 years instead of correctly indicating that the\ninformation was exempt from automatic declassification. According to a senior program official,\nthe absence of declassification exemption markings may present a risk of prematurely disclosing\nclassified information, even if documents include a control marking indicating that information\nrequires a review by an authorized individual prior to declassification. Other program officials\nopined that there is little risk of improper disclosure because a review is specifically required\nprior to declassification. We could not reconcile these disparate views, but noted that\ncompliance with marking requirements generally improves accountability and helps protect\nagainst improper disclosure.\n\nAdditionally, we identified two documents from field intelligence elements in which marking\nguidance was incorrectly applied. One of these documents was marked with a specific\ndeclassification date within 25 years and another marked with 25X1. Both documents, however,\nappeared to contain information meeting the criteria of 50X1-HUM declassification exemption. 8\n\n\n7\n  Classified NSI is subject to automatic declassification, which permits information to be declassified without review, if the\ndocument is more than 25 years old and has been determined to have permanent historical value under Title 44, United States\nCode. However, classified NSI requiring continued protection beyond 25 years can be exempted from automatic declassification,\nwhen the information has been determined to satisfy one or more of the exemption categories as indicated on the classification\nguides used.\n8\n  Both 25x1 and 50x1 are automatic declassification exemptions indicating that the document shall be protected beyond 25 and\n50 years, respectively. 50X1 is applied to information that could reveal the identity of a confidential human source, whereas\n25X1 pertains to human and non-human sources and methods.\n______________________________________________________________________________\nPage 2                                                        Details of Finding\n\x0c______________________________________________________________________________\n\n\nThe respective derivative classifiers interviewed indicated that they were unaware of a policy\nchange issued by Information Security Oversight Office, Notice 2012-02: Classification\nMarking Instructions on the Use of \xe2\x80\x9c50X1-HUM\xe2\x80\x9d vs \xe2\x80\x9c25X1-human\xe2\x80\x9d as a Declassification\nInstruction, in December 2011. This policy specified that the declassification instruction of\n50X1-HUM should be applied if information could reveal specific sources. Further, based on a\nseparate document review performed by a senior program official and an Office of Intelligence\nand Counterintelligence (Headquarters Intelligence) derivative classifier, the information\ncontained in the two documents came from multiple sources, even though the documents did not\ninclude a source list. This treatment is contrary to 32 CFR Part 2001, which indicates that a\nlisting of source materials should be indicated or attached to a derivatively classified document if\nmultiple sources were used to classify the information. Accordingly, proper declassification\ninstructions could not be determined because the source list information was not available.\n\nWe further identified improper instructions in 32 emails regarding the duration of protection.\nHalf of these emails originated from Headquarters Intelligence and field intelligence elements.\nHeadquarters Intelligence derivative classifiers stated that a classification marking tool\nembedded in the email system allowed users to set-up default declassification instructions.\nHowever, we found that instructions were not always modified to ensure consistency with the\nclassification guide being used. Further, we determined that the Headquarters Intelligence\nclassification marking tool had not been deployed in the classified email systems at two field\nintelligence elements. Thus, field intelligence elements derivative classifiers applied\nclassification markings manually and also, in the majority of the cases we reviewed, markings\nthat were inconsistent with requirements.\n\nMissing Information on the Origin and Level of Protection\n\nWe determined that classification blocks and portion markings, which describe the origin,\nduration and level of protection, were not always properly annotated on the documents reviewed.\nWe identified 20 documents that were marked as classified by derivative classifiers in which the\nblocks were missing information. According to a local classification officer, derivative\nclassifiers were not required to mark the documents until the documents were considered final.\nFurther, the local classification officer told us that draft documents or working papers were not\nrequired to be marked by derivative classifiers until after 180 days of creation or prior to being\nreleased outside the organization. However, we noted that these documents, which were hard\ncopies, were not marked as "Draft" or "Working Papers" to clearly convey the status of classified\ninformation as required by Department Order 471.6 and NNSA Policy Letter 70.4. Furthermore,\ncontrary to 32 CFR Part 2001, we identified 57 documents and emails that lacked portion\nmarkings on the subject line and main body of documents and emails; 42 of the 57 documents\nand emails were attributable to emails that originated from Headquarters Intelligence and field\nintelligence elements. Without adequate information on the origin and level of protection,\ntraceability to the origin of classification decisions and protection of classified information could\nnegatively impact efforts to safeguard and share classified NSI.\n\n\n\n\n______________________________________________________________________________\nPage 3                                                        Details of Finding\n\x0c______________________________________________________________________________\n\n\n                                     Classified Email System\n\nWe observed that a classification marking tool embedded in the classified email system at one\nNNSA site automatically marked emails as Secret//Restricted Data , the highest level of\nprotection authorized for that system, regardless of content. In contrast, the classified email\nsystem at another NNSA site did not include a marking tool, and required users to manually\nmark emails. We did not assess the appropriateness of email markings from the two NNSA sites\'\nclassified email systems; however, we observed and senior officials confirmed that the\nclassification marking tool\'s automatic feature at one NNSA site could result in improperly\nmarking emails and potentially over classifying NSI. The requirements in 32 CFR Part 2001\nindicate that emails containing classified NSI should be marked with proper classification\nmarkings while in the electronic environment, or if not practicable, a warning should be\nannotated to provide further guidance on the limited use of classified information contained in\nthe email. Contrary to 32 CFR Part 2001, we noted that Department guidance, Department\nOrder 471.6 and NNSA Policy Letter 70.4, did not specify that classified NSI emails required\nproper markings while in electronic format, but did when printed.\n\nSenior officials told us that the Department faces a unique challenge of effectively protecting and\nimplementing classification requirements for Restricted Data, Formerly Restricted Data and NSI\nin the electronic environment. The challenge is attributable to the differing requirements for\nprotecting Restricted Data and NSI. NSI requires provisions, such as portion markings and\nautomatic declassification, whereas RD is excluded from these provisions because it is classified\nunder the Atomic Energy Act. As the Department deals with Restricted Data the majority of the\ntime, certain classified email systems at the Department and NNSA sites were designed to\nprotect such information. Despite the challenges, a senior program official indicated that emails\nshould be marked appropriately while in the original electronic format, as information could be\nshared outside the organization. The senior program official also acknowledged that the process\nfor marking emails could be improved.\n\n                                     Self-Inspection Program\n\nWe determined that the Department\'s Office of Classification had completed on-site evaluations,\nan element of its self-inspection program. However, responsible Headquarters Intelligence\nofficials had not conducted the required classification biennial self-assessments and annual\nclassification decision reviews. We noted that there are three elements of the self-inspection\nprogram \xe2\x80\x93 on-site evaluations, self-assessments and classification decision reviews. These\nelements are required to appropriately assess the effectiveness of the NSI program, including\ndistribution of classification authorities, actions taken to correct previous assessment findings,\nand to identify and correct misclassification actions, as specified in Department Order 475.2A,\nIdentifying Classified Information.\n\nOn-Site Evaluations\n\nWe determined that the Office of Classification had conducted the required on-site evaluations to\nindependently assess the NSI program within individual Department and NNSA sites. In fact,\n\n______________________________________________________________________________\nPage 4                                                        Details of Finding\n\x0c______________________________________________________________________________\n\n\nthe on-site evaluation report for one NNSA site reviewed noted deficiencies concerning the site\'s\ninsufficient sample of documents reviewed during the annual classification decision reviews. In\nparticular, the Office of Classification found that the site only reviewed unclassified documents\nto ensure that such documents did not contain classified information, but did not include a\nsample of classified documents as required by Department Order 475.2A. Since that review, we\nnoted that the site had taken corrective actions to incorporate a sample of classified documents\nduring its annual reviews.\n\nSelf-Assessments\n\nWe noted that Headquarters Intelligence had used Assistance Visits conducted by the Office of\nClassification in July 2008 and November 2010, in lieu of completing the required biennial self-\nassessments. According to a senior program official, an Assistance Visit can be used as a form\nof self-assessment to assist Headquarters Intelligence in developing corrective actions to address\nconcerns found during the review. However, we determined from the Assistance Visit to the\nDepartment of Energy, Office of Intelligence and Counterintelligence report, dated November\n2010, and interviews with Headquarters officials that Headquarters Intelligence had not: (1)\nimplemented corrective actions addressing the need to conduct biennial self-assessments noted\nduring the previous July 2008 Assistance Visit; or (2) established oversight responsibilities, such\nas the performance of self-assessments and classification decision reviews at field intelligence\nelements. The assessment also identified classification marking errors in 27 percent of the\nclassified documents reviewed. Such errors included improper annotation on the duration of\nprotection, missing advisement on origin, and inadequate information on the sources used to\nmake classification determinations.\n\nWhen asked about the failure to perform self-assessments, a senior Headquarters Intelligence\nofficial told us that integrating quality control into its classification program through the use of\ntechnical subject matter experts and reviews of finished intelligence products containing\nauthoritative analysis disseminated to Intelligence Community elements are forms of self-\nassessment. Although the quality assurance review of finished intelligence products appears to\nbe a sound practice, we believe that Headquarters Intelligence officials are missing an\nopportunity to identify and correct deficiencies and strengthen processes necessary to protect\nNSI through the performance of the required assessments.\n\nClassification Decision Reviews\n\nHeadquarters Intelligence had not conducted comprehensive classification decision reviews that\nencompassed a representative sample of classified NSI at Department Headquarters, as required\nby Department Order 475.2A. Specifically, we determined that Headquarters Intelligence\nclassification officials only reviewed approximately 140 finished intelligence products during\nFiscal Year (FY) 2012. We found that Headquarters Intelligence classification officials did not\nreview emails and internal documents, despite the fact that 90 percent of the 5,737 derivative\nclassifier decisions reported to the Information Security Oversight Office were attributable to\nemails.\n\n\n______________________________________________________________________________\nPage 5                                                        Details of Finding\n\x0c______________________________________________________________________________\n\n\nIn addition, we determined that annual classification decision reviews excluded field intelligence\nelement activities. According to a Headquarters Intelligence program official, a classification\ndecision review was conducted at one of two field intelligence sites that we reviewed, in\nconjunction with an Office of Classification on-site evaluation in March 2012. We also noted\nthat this review was last performed in March 2012 even though it is required on an annual basis.\nFurther, we found that as of March 2014, Headquarters Intelligence had not conducted a\nclassification decision review at the other site that we reviewed, but had tentatively scheduled the\nreview for FY 2015. The lack of annual classification decision reviews may have contributed to\nthe classification marking errors identified during our review.\n\n                                                Classification Challenges\n\nWhile we did not find instances in which formal challenges were handled inappropriately, we\ndetermined that 12 of 37 interviewed derivative classifiers responsible for ensuring the integrity\nand protection of classified information were not familiar with the requirements for making a\nformal challenge to external entities when they believe that information could be misclassified. 9\nHowever, they were aware of their responsibility to reach out internally to their respective\nclassification officers. In addition to derivative classifiers, individuals with security clearances\nmay not be aware of the requirements for making a formal challenge. Executive Order 13526,\nClassified National Security Information, specifies that the Department must establish\nprocedures to allow and encourage authorized holders of information to challenge the\nclassification of information that is believed to be misclassified. These procedures ensure that,\namong other things, individuals are advised of their appeal rights outside the agency. Also, 32\nCFR Part 2001 specifies that formal challenges must be made in writing and established response\ntimeframes shall be met. Classification officials told us that even though the Department lacks\nprocedures on formal challenges, informal challenges are generally encouraged in the\nDepartment to facilitate timely resolution.\n\nDuring interviews, senior program officials stated that classification challenges occur\ninfrequently at the Department. However, the senior official acknowledged that there is a need\nto clarify the process for making classification challenges and provide information on appeal\nrights to create an environment where people have the knowledge to raise concerns about\ninformation that could be misclassified.\n\nCONTRIBUTING FACTORS AND POTENTIAL IMPACT\n\nThe classification related issues we observed occurred, in part, because of ineffective oversight\nof classification activities and inadequate training and guidance. We were told by a\nclassification program official that oversight activities such as self-assessments and document\ndecision reviews had not been completed at Headquarters Intelligence and field intelligence\nelements because Headquarters Intelligence officials had not allocated resources to do so.\n\n\n\n\n9\n Formal challenges are those that are submitted in writing to the Office of Classification or Associate Administrator for Defense\nNuclear Security, if submitted by NNSA personnel. Informal challenges, which are generally encouraged in the Department, rise\nup to the level of formal challenges when differences in views are not resolved at the program/field classification officer level.\n______________________________________________________________________________\nPage 6                                                        Details of Finding\n\x0c______________________________________________________________________________\n\n\nFurther, Headquarters Intelligence had not granted proper security clearances to local\nclassification officers to allow accessibility to field intelligence element information enabling the\nperformance of self-assessments and classification decision reviews. Further, interviews\nrevealed and we confirmed that performance standards regarding classification duties had not\nbeen established for the majority of interviewed Federal derivative classifiers, although required\nby Executive Order 13526. Such performance standards could help ensure that operational and\nsecurity requirements pertaining to classified NSI are satisfied.\n\nSufficiency of training and guidance on classification may have also contributed to the marking\nerrors and other issues. We found that derivative classifiers\' initial and refresher training\nmaterials at Headquarters and at the two sites reviewed focused on marking documents but not\nemails. We also found that the same derivative classifiers\' training did not provide sufficient\nemphasis on marking working papers that contained classified NSI. Further, we noted that\nalthough the Department offers training covering the topic of marking classified working papers\nat Headquarters, derivative classifiers were not required to complete the training. We also found\nthat while initial security briefings provided to individuals who are granted security clearances\ncovered marking classified working papers, annual refresher security briefings did not.\n\nIn addition, Department and NNSA guidance pertaining to marking classified emails were not\nconsistent with Federal requirements. In particular, the Federal guidance provides for marking\nemails in the electronic environment while the Department guidance only specifies the\nrequirement for marking emails when printed. Additionally, derivative classifiers we\ninterviewed were not familiar with all requirements for making a formal challenge regarding\ninformation that could be misclassified because the Department had not developed\ncomprehensive training and guidance on that subject. For example, our review of training\nmaterials for derivative classifiers at one site specified the need to contact the local classification\nofficer about challenges, but did not describe the process for making formal challenges outside\nthe local classification office. In addition, we noted that reference materials available to other\nindividuals with security clearances, such as annual security briefings and policies at\nHeadquarters and the two NNSA sites, were not comprehensive. For instance, the procedures for\nmaking formal classification challenges, including appeal rights and established timeframes were\nnot specified in the Department Order 475.2A and local policies at the two NNSA sites. Further,\nsecurity briefings did not provide procedures or information regarding appeal rights outside of\nthe Office of Classification or the local classification office.\n\nProtecting NSI while sharing information as widely as possible presents a difficult challenge.\nStrikingly, the balance between these very important national priorities is difficult without\neffective oversight, training and well-developed guidance for those involved with classification\nof NSI. While the issues identified in this report are based on a judgmentally selected sample,\nthey may, when considered in conjunction with deficiencies identified by the Office of\nClassification during its evaluations, be indicative of issues impacting NSI classification\nprocesses at Department and NNSA elements we did not specifically test. We have made a\nnumber of recommendations intended to assist the Department with improving program\nmanagement and execution of its classified NSI program.\n\n\n\n______________________________________________________________________________\nPage 7                                                        Details of Finding\n\x0c______________________________________________________________________________\n\n\nRECOMMENDATIONS\n\nTo address the challenges we identified in this report, we recommend that the Chief Health,\nSafety and Security Officer:\n\n   1. Update Department Order 475.2A to incorporate guidance on the process for formal\n      classification challenges.\n\nWe also recommend that the Chief Health Safety and Security Officer, in coordination with the\nNational Nuclear Security Administration, Office of the Chief Information Officer, Office of\nIntelligence and Counterintelligence, and Field Elements:\n\n   2. Ensure that the Department guidance is updated to make certain that emails containing\n      classified NSI are properly marked while in the original electronic format;\n\n   3. Provide appropriate training and guidance on classification marking for working papers\n      to assist derivative classifiers and others with security clearances in more effectively\n      marking classified information;\n\n   4. Ensure that individuals with security clearances, including derivative classifiers, are\n      trained and made aware of their responsibilities to make formal challenges;\n\n   5. Ensure that emails containing classified NSI are appropriately marked while in the\n      original electronic format; and\n\n   6. Implement a process to hold derivative classifiers accountable for implementing NSI\n      classification requirements, including marking of classified NSI documents and emails.\n\nFurther, we recommend that the Director, Office of Intelligence and Counterintelligence:\n\n   7. Ensure that self-assessments and document decision reviews are conducted at\n      Headquarters Intelligence and field intelligence elements, as required.\n\n\n\n\n______________________________________________________________________________\nPage 8                                                      Recommendations\n\x0c______________________________________________________________________________\n\n\nMANAGEMENT AND INSPECTOR COMMENTS\n\nManagement concurred with the recommendations in the report, but raised concerns regarding\nthe impact our recommendation would have on established processes for classifying and\nprotecting Restricted Data and Formerly Restricted Data, and on the costs associated with\nimplementing corrective actions resulting from the recommendations. Specifically, management\nexpressed concerns with classified emails containing NSI in which the Federal requirement to\nfully mark the classification of each email is problematic because not all email users are\nderivative classifiers authorized to make final classification determinations. Management cited\npossible solutions of permitting all email users to be NSI derivative classifiers to ensure\nclassified NSI emails are properly marked while in the original electronic format.\n\nWhile we concur that corrective actions resulting from our recommendations should take into\nconsideration impacts to existing processes, including those related to protecting Restricted Data\nand Formerly Restricted Data, appropriate guidance specific to classified NSI, including emails,\nshould be provided to ensure consistent application of Federal NSI classification requirements.\nAlso, in recognition of the implementation costs of properly marking classified NSI emails,\nFederal requirements permit classified NSI emails to exclude proper classification markings\nwhile in the electronic environment, provided that a warning on the limited use of the\ninformation is annotated on the email. Such option could potentially alleviate issues related to\nthe possible management solution of permitting all email users to be derivative classifiers.\n\nOverall, we found management\'s comments and planned corrective actions to be responsive to\nour report findings and recommendations. Management\'s formal comments were included in\nAppendix 6.\n\n\n\n\n______________________________________________________________________________\nPage 9                                     Management and Inspector Comments\n\x0cAppendix 1\n\n            INSPECTORS GENERAL COMMUNITY-WIDE FOCUS AREAS\n\n       Inspection\n       Focus Area                                    Disposition\n1.   General Program   Program Management and Execution. We found that the Department\n     Management        of Energy (Department), in general, had established and implemented\n                       certain elements of the Federal classification requirements, including\n                       an annual process for validating special access programs to limit its\n                       number, as required by Executive Order 13526, Classified National\n                       Security Information. However, we found derivative classifiers were\n                       not familiar with the requirements for making a formal challenge for\n                       information that could be misclassified.\n\n2.   Original          Program Execution. We found 14 individuals with Original\n     Classification    Classification Authority (OCA), 5 with Top Secret OCA and 9 with\n     Authority         Secret OCA, were appropriately delegated and reported to Information\n                       Security Oversight Office (ISOO).\n\n3.   Original          Program Execution. We determined that the last original classification\n     Classification    determination, made in Fiscal Year (FY) 2008, was completed in\n     and Marking       accordance with Federal classification requirements.\n\n4.   Derivative        Program Execution. We determined that derivative classifiers\n     Classification    appeared to have basic knowledge on classification. However, we\n     and Marking       noted that the derivative classifiers did not always appropriately apply\n                       classification marking requirements. Specifically, 65 percent of\n                       documents and emails reviewed contained classification marking\n                       errors.\n\n5.   Self-Inspection   Program Management and Execution. As part of the Department\'s self-\n                       inspection program, we found that the Department\'s Office of Health,\n                       Safety and Security, Office of Classification had conducted an on-site\n                       evaluation at one of the reviewed National Nuclear Security\n                       Administration sites, to independently assess the effectiveness of the\n                       classification program. We noted that deficiencies were identified\n                       during the evaluation and that the site had taken corrective actions to\n                       address those deficiencies. However, we found that elements of the\n                       self-inspection program had not been fully implemented by responsible\n                       Office of Intelligence and Counterintelligence (Headquarters\n                       Intelligence) officials at Headquarters Intelligence and field\n                       intelligence elements.\n\n\n\n\n______________________________________________________________________________\nPage 10                          Inspectors General Community-wide Focus Areas\n\x0cAppendix 1 (continued)\n\n\n     Inspection\n     Focus Area                                     Disposition\n6.   Reporting to    Program Execution. We found that the required reporting to ISOO\n     ISOO            such as delegations of OCA, statistical reports, accounting for costs,\n                     and self-inspections were submitted to ISOO. Further, we noted that\n                     the Department had no reportable incidents of security violations and\n                     improper declassification of information, as described in the self-\n                     inspection reports submitted to ISOO for FY 2012 and 2011. Also, we\n                     noted that the estimated total of derivative classifier decisions reported\n                     to ISOO was projected. We noted that ISOO permits the submission of\n                     these estimates.\n\n7.   Security        Program Management and Execution. We noted that the Department\'s\n     Education and   policy incorporated the essential elements for establishing a formal\n     Training        security education and training program for individuals with security\n                     clearance, including derivative classifier training on familiarization to\n                     system of classification, derivative review process and use of\n                     classification guides, and marking mechanisms. The policy also\n                     provided for suspending OCA and derivative classifiers who fail to\n                     meet training requirements. Based on our review of training records,\n                     we determined that original classifiers and derivative classifiers had\n                     met the required training.\n\n8.   Intelligence    Program Management and Execution. We found that the Intelligence\n     Component       Community-wide guidance and directives related to classification, such\n                     as Controlled Access Program Coordination Office Register and\n                     Manual, were incorporated in Headquarters Intelligence\'s derivative\n                     classifier training materials. We also noted that 20 of 21 derivative\n                     classifiers from Headquarters Intelligence and field intelligence\n                     elements had access to updated Intelligence-related policies and\n                     procedures. Based on interviews with derivative classifiers, we did not\n                     find common issues or concerns related to the Office of the Director of\n                     National Intelligence policies on controlled access information.\n\n\n\n\n______________________________________________________________________________\nPage 11                          Inspectors General Community-wide Focus Areas\n\x0cAppendix 2\n                             DOCUMENT REVIEW RESULTS\n\n\n                         Table 1: Classification Error by Category\n\n\n\n                                    Identified Classification Errors\n                                    Improper       Lack of      No\nDepartment   Sample               Declassification Portion Classification Total Errors\n Element      Size  Misclassified  Instructions    Markings   Block       Errors  %\n    A         118        1              40           47          0         88    75%\n                       [Errors found in 29 documents and 59 emails]\n     B          47          3               10              8           5          26      55%\n                       [Errors found in 7 documents and 19 emails]\n     C          66          1               19              2           15         37      56%\n                       [Errors found in 29 documents and 8 emails]\nTotals:        231          5               69             57           20         151    65%\n\nSource: Analysis of the Office of Inspector General document review as conducted on a sample\nbasis. A single document or email may include multiple marking errors.\n\n\n\n\n ______________________________________________________________________________\nPage 12                                                Document Review Results\n\x0cAppendix 3\n\n                       SAMPLE OF A CLASSIFIED DOCUMENT\n\n         All contents below are unclassified. Markings are example purposes only.\n\n\n                                                                            Banner Marking\n\n\n\n\n          Portion Marking\n\n\n\n\n                                                                Classification Block\n\n\n\n\n                                                                            Banner Marking\n\nSource: Office of Health, Safety and Security, Office of Classification, DC Module E: Marking\nMechanics for Derivative Classification, March 2012.\n\nLegend: U \xe2\x80\x93 Unclassified; S \xe2\x80\x93 Secret; C \xe2\x80\x93 Confidential; NSI \xe2\x80\x93 National Security Information;\nRD \xe2\x80\x93 Restricted Data; FRD \xe2\x80\x93 Formerly Restricted Data; FGI \xe2\x80\x93 Foreign Government Information\n\n\n\n______________________________________________________________________________\nPage 13                                        Sample of a Classified Document\n\x0cAppendix 4\n\n                       OBJECTIVE, SCOPE AND METHODOLOGY\n\nOBJECTIVE\n\nThe objective of this inspection was to assess whether applicable classification policies,\nprocedures, rules, and regulations have been adopted, followed, and effectively administered\nwithin the Department of Energy (Department); and identify policies, procedures, rules,\nregulations, or management practices that may be contributing to persistent misclassification of\nmaterial within the Department.\n\nSCOPE\n\nConsistent with the Council of the Inspectors General on Integrity and Efficiency, Standard\nUser\'s Guide for Inspectors General Conducting Evaluations under Public Law 111-258, the\n"Reducing Over-Classification Act," our inspection focused on National Security Information\npertaining to eight areas: (1) original classification authority; (2) general program management;\n(3) original classification and marking; (4) derivative classification and marking; (5) self-\ninspections; (6) reporting; (7) security education and training; and (8) intelligence component\ncross-cutting issues.\n\nThis performance-based inspection was performed from March 2013 through March 2014, at\nDepartment Headquarters in Washington, DC, the Nevada Field Office in Las Vegas, Nevada,\nand Sandia National Laboratories in Albuquerque, New Mexico. The inspection was conducted\nunder Office of Inspector General Project Number S12IS013.\n\nMETHODOLOGY\n\nTo accomplish the inspection objective, we:\n\n   \xe2\x80\xa2   Reviewed and analyzed Federal and Department regulations on classification.\n\n   \xe2\x80\xa2   Interviewed Federal and Contractor officials, including classification officers, original\n       classifiers, and derivative classifiers.\n\n   \xe2\x80\xa2   Selected a judgmental sample totaling 231 documents and emails that were derivatively\n       classified by selected derivative classifiers during the period from Fiscal Year 2012\n       through current, for each Department element. The sample was determined to reflect the\n       relative size of the inspected element. Further, the sample consisted of documents and\n       emails randomly selected during the course of the inspection.\n\n   \xe2\x80\xa2   Obtained and reviewed original classification determinations made in the last 5 years.\n\nWe conducted this performance-based inspection in accordance with the Council of the\nInspectors General on Integrity and Efficiency\'s Quality Standards for Inspection and\nEvaluation. Those standards require that we plan and perform the inspection to obtain sufficient,\n\n______________________________________________________________________________\nPage 14                                        Objective, Scope and Methodology\n\x0cAppendix 4 (continued)\nappropriate evidence to provide a reasonable basis for our conclusions and observations based on\nour inspection objective. We believe the evidence obtained provided a reasonable basis for our\nconclusions and observations based on our inspection objective. Accordingly, the inspection\nincluded tests of controls and compliance with laws and regulations to the extent necessary to\nsatisfy the inspection objective. Because our review was limited, it would not necessarily have\ndisclosed all internal control deficiencies that may have existed at the time of our inspection.\nFinally, we relied on computer-processed data, to some extent, to satisfy our objective. We\nconfirmed the validity of such data, when appropriate, by conducting interviews and analyzing\nsource documents.\n\nAn exit conference was waived by the Office of Health, Safety and Security, National Nuclear\nSecurity Administration, Office of Intelligence and Counterintelligence, and Office of the Chief\nInformation Officer.\n\n\n\n\n______________________________________________________________________________\nPage 15                                        Objective, Scope and Methodology\n\x0cAppendix 5\n\n                                   RELATED REPORTS\n\nOffice of Inspector General Report\n\n   \xe2\x80\xa2   Inspection Report on Internal Controls over Accountable Classified Removable\n       Electronic Media at Oak Ridge National Laboratory, (INS-O-09-02, May 2009). The\n       Department of Energy Office of Inspector General found that (1) a number of\n       Secret//Restricted Data media had not been identified as Accountable Classified\n       Removable Electronic Media (ACREM) and placed into a system of accountability; (2)\n       other ACREM protections and controls were not implemented; and (3) other media\n       devices were stored in a security area without an analysis of vulnerabilities. Several\n       recommendations were made to the Manager, Oak Ridge Office, regarding improving\n       controls over ACREM. Corrective actions had been taken to address the\n       recommendations.\n\nU.S. Government Accountability Office\n\n   \xe2\x80\xa2   Report on Managing Sensitive Information, Actions Needed to Ensure Recent Changes in\n       DOE Oversight Do Not Weaken an Effective Classification System, (GAO-06-785, June\n       2006). The Government Accountability Office found that an October 2005 shift in\n       responsibility for classification oversight to the Office of Security Evaluations has\n       created uncertainty about whether a high level of performance in oversight will be\n       sustained. The Agency recommended that (1) the Department of Energy conduct a\n       similar number of reviews, as it did before October 2005; (2) apply selection procedures\n       that more randomly indentify classified documents for review; and (3) disclose the\n       selection procedures in future classification inspection reports. Corrective actions had\n       been taken to address the recommendations.\n\n\n\n\n______________________________________________________________________________\nPage 16                                                        Related Reports\n\x0cAppendix 6\n\n                         MANAGEMENT COMMENTS\n\n\n\n\n______________________________________________________________________________\nPage 17                                                 Management Comments\n\x0cAppendix 6 (continued)\n\n\n\n\n______________________________________________________________________________\nPage 18                                                 Management Comments\n\x0cAppendix 6 (continued)\n\n\n\n\n______________________________________________________________________________\nPage 19                                                 Management Comments\n\x0cAppendix 6 (continued)\n\n\n\n\n______________________________________________________________________________\nPage 20                                                 Management Comments\n\x0cAppendix 6 (continued)\n\n\n\n\n______________________________________________________________________________\nPage 21                                                 Management Comments\n\x0c                                                                    IG Report No. DOE/IG-0904\n\n                              CUSTOMER RESPONSE FORM\n\nThe Office of Inspector General has a continuing interest in improving the usefulness of its\nproducts. We wish to make our reports as responsive as possible to our customers\' requirements,\nand, therefore, ask that you consider sharing your thoughts with us. On the back of this form,\nyou may suggest improvements to enhance the effectiveness of future reports. Please include\nanswers to the following questions if applicable to you:\n\n     1. What additional background information about the selection, scheduling, scope, or\n        procedures of the audit or inspection would have been helpful to the reader in\n        understanding this report?\n\n     2. What additional information related to findings and recommendations could have been\n        included in the report to assist management in implementing corrective actions?\n\n     3. What format, stylistic, or organizational changes might have made this report\'s overall\n        message clearer to the reader?\n\n     4. What additional actions could the Office of Inspector General have taken on the issues\n        discussed in this report that would have been helpful?\n\n     5. Please include your name and telephone number so that we may contact you should we\n        have any questions about your comments.\n\nName __________________________________ Date ________________________________\n\nTelephone ______________________________ Organization __________________________\n\n\nWhen you have completed this form, you may telefax it to the Office of Inspector General at\n(202) 586-0948, or you may mail it to:\n\n                               Office of Inspector General (IG-1)\n                                     Department of Energy\n                                    Washington, DC 20585\n\n                                  ATTN: Customer Relations\n\nIf you wish to discuss this report or your comments with a staff member of the Office of\nInspector General, please contact our office at (202) 253-2162.\n\x0cThis page intentionally left blank.\n\x0cThe Office of Inspector General wants to make the distribution of its reports as customer friendly\nand cost effective as possible. Therefore, this report will be available electronically through the\n                                Internet at the following address:\n\n              U.S. Department of Energy Office of Inspector General Home Page\n                                    http://energy.gov/ig\n\n  Your comments would be appreciated and can be provided on the Customer Response Form\n                                 attached to the report.\n\x0c'